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[57] ABSTRACT 

Disclosed is a software -based system and method for 
restricting unlicensed software duplication and installation. 
The invention features a software security system using a 
remove function for restricting unauthorized duplication and 
installation of an application program onto one or more data 
processing systems. The software security system includes 
an installation program and an application program. The 
application program as written is "un-runnable" owing to 
nonsense instruction sets dispersed throughout the actual 
programming instructions of the application program. An 
installation program routine comprises software instruction 
sets for removing the nonsense instruction sets in the appli- 
cation program. The software security system executes an 
instruction set to delete the nonsense instruction sets upon 
installation of the application program into one or more data 
processing systems thereby allowing application program to 
be executed once loaded onto the system (s), upon corre- 
spondence between an internal run key and an execution- 
time run key. 

5 Claims, 9 Drawing Sheets 
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SOFTWARE SECURITY SYSTEM USING "copy protection" technologies can be broadly characterized 

REMOVE FUNCTION TO RESTRICT as involving four basic strategies: "access limitation," "copy 

UNAUTHORIZED DUPLICATING AND detection," "duplication limitation" and "copy inactivation." 

INSTALLATION OF AN APPLICATION "Access limitation" techniques prohibit access to pro- 

PROGRAM 5 grams installed on a computer's hard drive, also referred to 

n ™™~ TT .^ , vn;T ,^ AU as the "fixed drive" or "Winchester drive," such that data 

BACKGROUND OF INVENTION ^ ^ program _ and (he profflm , i|sdf> can not be 

1. Field of Invention copied without the tacit approval of the authorized licensee. 
The present invention relates generally to a software- Such "access-limiting" techniques include hardware locks 

based system and method for reducing unlicensed software 10 such as the mechanical key and lock system of stand-alone 

duplication. In particular, it relates to a method for restrict- computers which require that the lock be in the "on" position 

ing hard-drive installation of software to authorized to enable the stand alone system to operate. It also includes 

purchasers, and for reducing unauthorized redistribution of systems that require for operation the interface of an elec- 

softwarc. tronic key with the computing system as through the serial 

2. Brief Description of the Prior Art 15 P orts of lhe computer, as disclosed, for example, in U.S. Pat. 
rt .l .. . .i_ uc No. 5,343.524, or to be interfaced through the keyboard, as 
Over the past twenty years the number of persons owmng disclosed / for ; xample( in as . Pa , ^5,402,492. 

or utilizing a computer on a daily basis has grown tremen- r . 
dously. Along with the proliferation and popularity of com- Access-limitation techniques may permit access to the 
puter systems has come a immense array of computer „ operating system and other programs on a hard-dnve but 
programs for specialized applications such as spread sheets, limit utilization of a particular program stored on the hard 
mathematical modeling, desk top publishing and computer ^ve. For example, hardware keys which contain code that 
games. Such computer programs usually are provided as matches the serial number for a particular software may be 
machine-readable information recorded on a magnetic stor- employed. In such an approach, "protected" programs stored 
age medium such as a diskette or floppy disk. Many of these on a bard-drive cannot be run unless the matching hardware 
computer programs require many of thousands of hours for ke y 15 insertcd 1Dt0 a P ort on the computer. On the other 
their development, and thus significant monetary outlays by h and > "non -protected" programs may be freely utilized, 
their developers. Such large ' development costs must be Similarly, certain access-limiting programs require "soft- 
recouped by sales of the product, product which may face ware keys" to be inserted into the disk dnve in order for a 
considerable competition in the market place at its launch. 30 "protected" program on the hard-drive to be utilized. 

Unfortunately, the ethical software industry is plagued not Another commonly-used "access limitation" scheme 

only by fierce competition within its own ranks, but also by employs the use of an authorization code, such as a 

unsavory predatory practices from without. Among the most password, key number etc., which must be obtained from the 

threatening of these practices is that of software piracy. software supplier and entered when using the software. If 'the 

Software piracy involves the unauthorized copying of com- 35 P^^rd or code is not entered, the program is designed to 

puter software . Unauthorized copies cost the software indus- terminate. 

try hundreds-of-millions of dollars in licensing fees each The problem with all access-limiting techniques is that 
year. Since the pirate has no development costs, and typi- such techniques only prohibit illicit duplication if the lic- 
cally substantially less overhead than the ethical software ensee of the product vigilantly protects access to the pro- 
developer, pirated software more often than not sells at 40 gram. This is often not the case. For example, a hardware or 
prices considerably below that of the manufacturer. Because software key can be shared with others permitting them to 
of the often large discrepancy between the price of unau- run the "protected" program on their own computers, 
thorized and authorized computer software, there is a sub- Likewise, a code or password easily can be supplied to a 
stantial and continuing black market in illegally-copied person who is unauthorized to use a particular piece of 
software. 45 software. 

Duplication of computer software, particularly software Another type of technique used to dissuade unauthorized 

distributed on magnetic media, is typically quite easy. In the coping is "copy detection." "Copy detection" techniques 

absence of some form of protection, a software package have as their primary goal the identification of illicit copies, 

from an authorized dealer may be copied numerous times on that is, such techniques seek to distinguish illicit copies from 

a single piece of hardware. While, in theory, copyright laws 50 the authorized original. One "copy detection" scheme 

protect software developers from unauthorized duplication involves the destruction, often by laser, of a particular sector 

of their wares, it is often difficult, impractical, and costly, for on an the authorized disk during manufacture. In such a 

developers to assert their copyrights against a small com- scheme, the authorized disk remains operable as upon invo- 

pany or an individual who makes only a few copies. The cation the sector is verified as unwritable and execution is 

employment of license agreements suffers from similar 55 continued. A copy of such disk, however, easily can be 

difficulties. In many instances, it is not possible for the distinguished from the authorized disk since it lacks the 

software developer to discern the identity of an unauthorized obliterated sector. 

user of its software. For example, it is not uncommon for One of the most widely employed "copy detection" 

several individuals to combine their resources to purchase schemes involves the practice of placing serial numbers in 

one software program and then make a number of copies for eo authorized software. Such practice permits tracing of unau- 

separate use of the software by each of them on their own thorized copies to the person to whom the authorized 

personal computers. When the consumer is faced with a low software was originally sold. Another approach is to require 

risk of being detected and prosecuted for illicitly copying the authorized user, upon the first start-up of the software, to 

software, the dis-incentive in passing along "hot copies" to input the user's name which is stored in the software's code 

friends and acquaintances is greatly reduced. 65 such that the user's name will appear on every subsequent 

Various technology -based solutions have been proposed initialization screen. These practices are intended to discour- 

to minimize the problem of software piracy. In general, these age licensed users from allowing their software to be 



12/10/2003, EAST Version: 1.4.1 



6,067,622 

3 4 

reproduced, knowing that they readily could be identified mined when the software is initially placed on magnetic 

from the unauthorized copy. medium, such as a diskette, and which can only be repro- 

"Copy detection" systems alone do little to dissuade duced under the original copying conditions. When illegal 

unauthorized copying as the software producer is unlikely to copying is attempted, the artifacts are obliterated; their 

known when the software is illegally copied. External 5 absence is detected by a process in the software which reacts 

enforcement must be employed to track down and determine by altering the software program such that the program 

who is in possession of an illicit copy. Further, programs becomes un-executable. 

exist which permit serial numbers and names located in (( ~ . . „ . . , „, t t , , 

.. r . . , . j , , , „ t Copy inactivation also has been effectuated by pro vid- 

apphcation programs to be located and erased. In an attempt A 1 ■, , . - • , 1- , 

to foil erasure of such information, one "copy detection" 10 ^ th * s °* ware P ac * a S e recorde \?\ > the u ori S mal didw«« a 

technique scatters the serial numbers and names in different 10 so ' c&11 ^ boonrtrap program which, when executed, indi- 

sectors of the program storage disk, and hides the identifying cates that n0 further dala 15 recorded. Thus when the onginal 

information in the format. Because of the scattered program, disk 15 ^P 1 ^' tne boot-strap program is copied also, but in 

the entire disk must be copied to ensure that all portions of accordance with typical copying routines, the computer 

the program are copied and in the process the identifying system is deceived into recognizing that no other data is 

information is also copied. Such an approach while making 15 available to be copied, the copied program therefore becom- 

it more difficult to erase identifying information, does not ing useless. 

overcome the need for external enforcement to prevent "Copy inactivation" schemes may also take into account 

further illicit copying. certain unique physical characteristics of the original soft- 

Another technique used to dissuade unauthorized copying ware disk. For example, the sectors of "original" software 

is "duplication limitation." "Duplication limitation" tech- 20 packages are normally in alignment. A characteristic of this 

niques include numerous approaches aimed at restricting the alignment is generally not carried over when the disk is 

number of copies which can be made from a single software copied. Thus execution of a software program may be made 

package. dependent upon detecting the alignment-associated charac- 

"Duplication limitation" may be undertaken by placing teristic of the "original" software package, 
restrictions within the computer program which either com- As with "duplication limitation" techniques, "copy- 
pletely preclude copying or permit only a limited number of inactivation" techniques typically do not permit back-up 
copies to be made. Such approach may employ a counter, copies of a hard-drive to be made. Some "copy-inactivation" 
located in the software, which allows a predetermined schemes further restrict use of the software to the medium 
number of startings of a host program before destroying the 3Q upon which the software originally was provided. "Boot- 
program. For example, software packages have been strap" schemes may be overcome by recognizing and oblit- 
designed such that, after one copy has been made, certain erating the "boot-strap" program before copying. Copy 
key features, or modules, of the package are obliterated to protection schemes that incorporate some characteristic in 
the extent that further copying is inhibited. the purchased software package which can be detected by a 

Another "duplication limitation" technique takes advan- 3S standard disk drive, but which cannot be reproduced by the 

tage of the hardware timer. "Date -dependent" programs are drive, have not been found to be very effective as the usual 

designed to match their ending calendar date with that of the mechanical tolerances found in disk drives minimizes the 

hardware timer and to cess function if the ending calendar efficacy of such schemes. 

date has expired. One disadvantage attendant to typical "access limitation," 
A relatively sophisticated "duplication limitation" scheme 40 "copy detection," "duplication limitation" and "copy inac- 
which has been employed in the art involves the use of a tivation" schemes is that they do not provide a means for 
so-called "parasite" instruction set. This technique requires preventing an authorized software program from being used 
that a "parasite" be introduced after each stopping of the by another individual on a different computer. Several 
software program. The "parasite" changes one byte in the proposal have been made to rectify this deficit, 
program in a predetermined manner after each stop. The 45 U.S. Pat. No. 4,688,169 to Joshi discloses a computer 
parasite introduction commands are located in form at which software security system for restricting execution of a corn- 
is normally not able to be copied. Generally, also specified p U t er program to a particular machine. Such system provides 
in the format is a "parasite killer" which restores altered f or storage of an unique machine identification code in the 
bytes to their original condition. hardware, firmware memory circuit or in the operating 
"Duplication limitation" approaches may be overcome by 50 system software designated for the machine. The system 
unconventional programs which reproduce virtually each further provides for a storage area within the software 
and every bit that is recorded in the original software program for incorporating the unique machine identification 
package. "Duplication limitation" approaches further suffer code. The program provides a means for retrieving and 
from the disadvantage that they do not allow, or severely - comparing the machine identification code in the program 
limit, legitimate backup copies to be made for archives. 55 with the machine identification code in the hardware, 
Programs depending on the clock date can be easily over- firmware, operating system etc., thus limiting execution to 
come by advancing the ending calendar date in the programs only one computer system. 

or altering the date in the hardware timer. "Parasite" tech- rj.s. Pat. No. 4,866,769 to Karp discloses copy protection 

niques can be overcome by replicating the "parasite killer" f or software distributed on diskettes. A unique first identi- 

such that it can be used to restore parasites in the unautho- 60 fiction is provided in the read-only-memory ("ROM") of a 

rized copies. personal computer in which the software on the diskette is 

Another technique designed to reduce piracy is "copy to be used. The personal computer identification is acces- 

inactivation." "Copy inactivation" includes a host of sib le to the user of the computer. The vendor who wishes to 

approaches aimed at rendering illicit copies useless or less protect its software from illegal copying or use provides a 

than useful. 65 source identification on the diskette. The personal computer 

One "copy inactivation" technique involves insertion into identification is used with the source identification on the 

the software artifacts whose locations are randomly deter- distributed diskette to produce an encoded check word, 
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using encryption techniques. The check word is generated Each of these "computer unit-restricted" systems also 

and written onto the distributed diskette during installation suffer from weaknesses. U.S. Pat. Nos. 4,688,169, 4,866,769 

and copied onto all backup versions made by the user's and 5,199,066 all specify a hardware identification code be 

personal computer. Prior to each use of the program, the placed in the ROM of the computer or in a hardware 

software on the diskette uses the personal computer and the 5 component of the computer, requiring some agreement with 

source identifications and check word to verify that the hardware manufacturers as to the provision of such code, 

software is being used on the same personal computer on and the me thod of providing such numbers. U.S. Pat. No. 

which it was installed. 5,276,738 requires that the machine be provided with a 

A method and system for preventing unauthorized use of pseudo-random number generator and requires that the user 

software is further disclosed in U.S. Pat. No. 5,113,518 to 10 keep a record of the key number in order to operate the 

Durst et al. Such system takes advantage of certain charac- program. U.S. Pat. No. 5,113,518, while inhibiting hard 

teristics which often differ between different computer drive copying, does not prohibit the program from being 

systems, such as bus size (e.g., 8-bit versus 16-bit bus line), installed onto several different computers by duplicating the 

computer clock speed, cyclic redundancy of ROM, random- original disk and then installing the program by means of 

access-memory ("RAM") wait states, disk drive rotation 15 eacn ^py. Further the '518 patent contemplates that the 

speed, read/write head access speed, and hard disk interleave software routine includes a set-up procedure to store in the 

value. These characteristics are measured and the values of software itself the signature of the computer system, (col.5, 

the characteristics stored in the application program which is l n .44-46) Thus the hardware parameters necessary to run the 

desired to be protected. When the application program is program may be determined by examining the software, 

sought to be executed, the program redetermines the char- 20 j^fo there is a need for a software security method 

acteristics of the computer system and compares them wMch dissuades . both iIlicit copying and installation of 

against the stored values m the program. If the compared applicalion prog rams, which res tricts operation of the appli- 

values are substantially the same, the application program is cation progfam {Q a gingle computer and/or WT> which does 

allowed to be executed. not require the user l0 remember a key num ber for its 

U.S. Pat. No. 5,199,066 to Logan discloses a method and 25 operation, which does not permit an unauthorized user from 

system for protecting software which makes use of an gaining access to the application program by learning a 

unique activation code provided by the software manufac- secret key num ber 0 r code, which does not require agree- 

turer. Such method entails inputting a unique hardware me nt with hardware providers to install unique identificaUon 

identification code into the hardware and inputting a first ^ each and every computer, that permits the making 

software code into the software. A first predetermined opera- 30 0 f back-up copies of the hard-drive of a computer on which 

tion is performed upon the hardware code and the first the pro tected application program is installed, which does 

software code to produce a first intermediate code. Aunique not require vigi i ant policing of access to the program by the 

activation code for the particular embodiment of the soft- licensee, and which does not require external enforcement to 

" ware employed is inputted and a second predetermined dissuade illicit copying, 

operation is performed upon the first intermediate code and 35 

the activation code to produce a second intermediate code. SUMMARY OF THE INVENTION 
The second intermediate code is compared with a second 

software code uniquely associated with the particular In accordance with this invention, a method and article of 

embodiment of the software and stored at a hidden location manufacture is provided whereby software application pro- 

within the software. The software is enabled for use if the 40 S rams stored on a Purveyor's original authorized disk, and 

second intermediate code and the second software code are those loaded from such disk onto a computer's hard-drive, 

identical are protected from illicit copying. Such system provides for 

U.S. Pat. No. 5,276,738 to Hirsch makes use of a pseudo- controlled access to application programs based on the 

random number generator, scrambler and alphanumeric 'licensee-status" of the person desiring to install and/or use 

encoder to limit use of an application program to one as the P ro S ram and ^ ldentlt y of ,he data Pr°cessmg 

computer. The system is designed to provide key values upon which the application program is authorized to be 

associated with software packages that cannot be easily stored. 

duplicated and which contain information useful in license The invention features a "installation key" required for 
verification. The system generates a user key from a "seed" installation of a workable application program into a 
input binary value which preferably contains the serial 50 memory storage area of the computer. The invention also 
number of the hardware device. Since the user key is features an "internal run key," generated by the program and 
generated in a pseudo-random fashion from the "seed" ■ stored in computer memory, which "unlocks" the applica- 
number, the user key is unique to the particular hardware to lion program if it is run on the computer system upon which 
which the program was installed. The protection mechanism the application program was first installed. The invention 
includes a means for taking an input binary value and 55 may further feature a user profile gate requiring an input 
generating a unique key value, as well as performing the characteristic of the user authorized to use the program prior 
reverse operation of taking a key value and generating an to execution of the application program. The invention 
input binary value. In a simple case, the only value that need permits full backup of the hard-disk drive, such backup- 
be obscured or safeguarded from disclosure is the seed value disks containing the fully functioning application program 
which is an arbitrary value selectable upon a last minute 60 for the computer on which it was first installed, but does not 
notice for generating valid key values. The system is permit the application program to function on any computer, 
designed such that design documentation, in addition to even on the computer on which it was originally installed, if 
source code related to its implementation, are not required to the program alone is copied from the drive, 
be hidden. That is, without knowing all of the values used to In one embodiment, an "install password" is generated 
generate the key value, it is not possible to predict what 65 upon executing the install program using the clock date of 
changes have to be made in the key in order to produce the hardware timer of the computer in an algorithm incor- 
another valid 32 bit input binary value. porated into the install programming. The "install password" 
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may be numeric and may be converted into an odd-even 
"install key number series'' (e.g., 0 representing even 
numbers, and 1 odd numbers). Installation of the application 
program requires that the person desiring to install the 
program enter a "purveyor install key" which correlates to 5 
the "install key number series." Such "purveyor install key" 
can be ascertained by calling the purveyor of the software 
involved and providing the purveyor with the serial number 
of the software and the clock date on the hardware timer. The 
purveyor calculates the "install password" from the infor- 
mation provided by the user and may convert the same into 
an odd/even "purveyor install key" to match the odd/even 
"install key number series." Provision of the "purveyor 
install key" may be by oral means or by data communication 
means coupled directly to the computer upon which the 
program is being installed, as for example, by modem. Use 35 
of an odd/even number series obfuscates the actual password 
which is generated on the particular date the installation 
program is executed, thereby making it more difficult to 
resolve the algorithm used to generate the "install pass- 
word." 20 

In one embodiment of the invention, an "internal run key" 
is generated by the install program and hidden in a file 
addended to a directory/subdirectory outside of the applica- 
tion program. Such directory/subdirectory location may be 
chosen by random selection employing such means as a 25 
random or semi-random (as, for example, initial selection 
being based on date of initial installation) selection table or 
random number generator. The location of the "hibernating" 
"internal run key" is entered into an instruction line of the 
application program by means of an install program direc- 30 
tive. The "internal run key" preferably relates to fixed 
parameters of the operating system upon which the appli- 
cation program is loaded. For example, the "internal run 
key" can be determined by means of an algorithm employ- 
ing the descriptive number with respect to the processor 35 
employed by the computer, the bus size of the computer, the 
hard disk interleave value, etc. The "internal run key" 
algorithm may also use set parameters in the BIOS file or 
operating system for calculating an "internal run key." The 
"internal run key" is used to confirm that the application 40 
program is running on the same computer on which it was 
originally installed by comparing it to the "execution-time 
run key," determined from fixed parameters of the operating 
system each time that the application is program run, using 
the same or similar algorithm as employed to determine the 45 
"internal run key." The "execution-time run key" algorithm 
may be installed in the body of the operating system 
program rather than in a subroutine in order to determined 
illicit erasure. 

The present invention may employ a user profile gate. 50 
Such gates may comprise programming instruction to com- 
pare user input against a previously stored user profile. For 
example, the profile gate may be a signature recognition 
program of a type well-known in the art which compares a 
user's signature against a database storing parameters 55 
related to the signature of an authorized user, e.g., a licensee. 
Signature input may be by means of mouse or other input 
devices attached to the computer. The profile gate may also 
consist of a number of questions, the answers to which are 
compared to the answers previously supplied to the same set eo 
of questions by the authorized user of the application 
program. A positive comparison between the stored autho- 
rized user profile and the profile provided by the present user 
of the system permits the application program to be fully 
executed. 65 

In one embodiment of the invention, running of the 
installation program is necessary for activation of the appli- 
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cation program. In this embodiment, the application pro- 
gram as written is "un-runnable" owing to nonsense instruc- 
tion sets dispersed throughout the actual programming 
instructions of the application program. Such nonsense 
instructions may comprise non-readable instructions, infi- 
nite loops, repeats, dead-end instructions (e.g. termination 
instructions) etc. After appropriate authorization is received 
to run the installation program, the install program executes 
instruction sets to delete the nonsense instructions in the 
application program, permitting the application program to 
be executed provided the "execution-time run key" and 
"user profile" are confirmed. 

The novel features which are believed to be characteristic 
of the invention both as to its organization and method of 
operation, together with further objects and advantages, may 
become more apparent when the prior description is read in 
connection with the below-described drawings. It is 
expressly understood, however, that each of the drawings is 
given for the purpose of illustration only and is not intended 
as a definition of the limits of the present invention, 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 illustrates components useful in the invention; 

FIG. la illustrates the components of the invention in 
their application context; 

FIG. lb is a perspective view of a personal computer and 
disks, within which is stored a computer program of the 
present invention; 

FIG. lc is a block diagram of the configuration of a typical 
computer system in which the present invention may be 
employed; 

FIGS. 2A-2E are schematic flow diagrams depicting a 
programming routine of the present invention which may be 
employed to protect software from illicit copying; and 

FIG, 3 is a block diagram flowchart of the process by 
which an applications program may be installed onto a 
computer system employing the present invention. 

DETAILED DESCRIPTION OF THE 
INVENTION 

Referring to FIG. 1A of the drawings, the components of 
the invention in their application context are depicted. The 
software of the present invention is represented by program 
10, FIG. 1A. In program 10, there resides an INSTALL 
module 11, an INITIALIZE module 12, and the main body 
of the application program 14. In addition, program 10 may 
have a COPY PROTECT module 13. Program 10 is typi- 
cally stored on magnetic media such floppy and hard disks 
15 (FIG. lb). Disks 15 may be employed to load the 
application program into a conventional personal computer 
system as shown in FIG. lb, or any other system that uses 
or operates with software such as video game playing 
devices. Conventional personal computer 18 includes a 
standard keyboard 19, a standard cathode ray tube (CRT) 
monitor 20, disk drives 16 and hard drive 17. Conventional 
personal computer 18 is shown to be further connected to 
laser printer 21. FIG. lc illustrates in block diagram form a 
typical configuration of the data processing system of com- 
puter 18 in which the present invention may find employ- 
ment. As shown, this configuration includes central process- 
ing unit 9, a random-access-raemory ("RAM") 22, a read- 
only-memory ("ROM") 23, clock generator 24 and 
hardware timer 25. Data processing system of computer 18 
receives data input from data input means, such as keyboard 
19. The illustrated elements are coupled, directly or 
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indirectly, to data and control bus 26 by which digital and repeated. If the file.ext is not in the subdirectory chosen, the 

control signals are transmitted from one element to another, file.ext is stored in the chosen directory as a hidden file (step 

generally under the control of central processing unit 9. 44) and the location of the file.ext is entered into a run key 

ROM 23 is conventional and, as is understood by those of comparison instruction step of the application program 

ordinary skill in the art, stores basic programs and data 5 (inquiry step 45). The install program may further cue for 

which are used by central processing unit 9 to carry out insertion of user profile information (step 46) such as a 

various operations. RAM 22 is also conventional, and as signature, terminating the install program (step 48) if the 

understood in the art, provides work space in the processing profile information is not received after inquiry (step 47). 

of data input. Clock generator 24, as is conventional, rune- p ro fii e information is stored in a file2.ext subdirectory 

tions to synchronize the operations of the central processing 30 housed in the application program (step 49) or as with the 

unit with other peripheral devices coupled to control bus 26. nidden file elsewhere on the hard disk. The install program 

Hardware timer 25 is a timing circuit separate and apart from subsequently deletes "nonsense instruction" steps in the 

clock generator 24. Hardware timer 25 is usually used to application program as represented at step 50. Such non- 

generate time-of-day information, memory refresh time, and scnsc instructions may include infinite loop commands such 

the like. As the various elements illustrated in FIG. lc are 35 ^ 
conventional and operate in a manner known to those of 
ordinary skill in the art, further description of the elements 
and their interaction and operation is not provided. 



Referring now to FIG. 2A-2E, there are shown schematic while [i] 

flow diagram depicting a programming routine of the 20 end while 

present invention which may be employed to protect soft- ^ 
ware from illicit copying. Installation system verification 

according to the invention starts at step 27. An install The install program is then continued as represented at 

password is determined at step 28 using an install password step 51 and connectivity between the application program 

algorithm which may be incorporated into the install pro- 25 and operating system is initialized at step 52. Upon comple- 

gram. The install password algorithm may use hardware- tion of installation of the application program, the install 

timer date information as a variable such that the install program terminates or may be programmed to be erased 

password changes as the date of the hardware-timer changes. (step 53). 

After determination of the install password, as represented at The steps of run verification are shown beginning at step 
step 28, such password may be converted (step 29) to an 30 54. At step 55, the run key for the date on which the 
odd-even install key number series. Subsequently, the user is application program is being run is determined using the 
cued for input of a purveyor install key (step 30) requiring same fixed parameters of the operating system as used to 
a call to the purveyor being made (step 69). The purveyor determine the internal run key stored in file.ext in the chosen 
may determine the install password, and thus the odd/even directory. The file.ext is retrieved from the specified direc- 
key number series necessary to "unlock" the install program, 35 tory in which it is stored (step 56) and compared against the 
by determining the lock algorithm which is employed in the execution-time run key (step 57). If the execution-time run 
software from a software serial number supplied by the key is found at inquiry step 58 to equal the internal run key 
installer and by ascertaining the date time of the installer's value of file.ext then the user is subsequently cued for input 
computer. Preferably, the purveyor provides an odd/even of user profile information as represented by step 61. If the 
purveyor install key to the computer via modem, however, 40 execution-time run key does not equal the internal run key 
the purveyor can also provide such information verbally to value of file.ext an error message is displayed (step 59) and 
the installer for input of such install key by installer (step the application program is terminated (step 60). Profile 
31). The inputted purveyor install key is compared against information input at time of execution of the application 
the internally generated install key number series at inquiry program is compared to the profile stored in file2.ext as 
step 32. If the numbers do not correspond a display error 45 represented by step 62. Again if the profiles do not match, an 
message is flashed (step 33) and the installer is cued once error message is displayed (step 59) and the application 
more for re- insertion of the purveyor install key (step 34) program terminated (step 60). If the profiles match than the 
and again the purveyor install key is compared to the install application program is continued as represented by step 63 
key number series (inquiry step 35). If the purveyor install through the application program instruction sets 64, 66, 68 
key inputted does not equal the install key number series 50 devoid of the nonsense instruction sets 65, 67. 
once more the install program may be terminated or erased Now referring to FIG. 3 there is shown a block diagram 
(step 36). If the purveyor install key is found to equal the flow chart of the process by which an applications program 
install key number the program directs a random selection of may be installed onto a typical computer system 18. Pur- 
a file and file extension at step 37. An internal run key is then veyor may manufacture software such that certain registra- 
calculated at step 38 by means of an internal run key 55 tion numbered software programs use one password 
algorithm employing values indicative of fixed parameters algorithm, while other registration numbered software pro- 
of the operating system, such as bus size or hard disk grams use different algorithms as represented by block 81. 
interleave value, as variables. The purchaser purchases the software encoded with the 
The internal run key is stored at step 39 in a randomly registration number intact as represented by block 70 and is 
selected file.ext. The processor directory architecture is 60 prompted to determine the hardware clock date (block 71) 
determined at step 40, a directory randomly selected at step prior to installation of the application program. The instal- 
41, the subdirectory architecture of the chosen directory lation program is continued until the program seeks the 
determined at step 42 and the file.ext compared to the purveyor install key (block 72) and the installer is prompted 
subdirectories to determine if there is any prior file.ext to contact the purveyor to obtain the purveyor install key 
subdirectory in the directory chosen at step 43. If a file.ext 65 upon provision of the software registration number and date 
subdirectory already exists in the directory, then a new file of the hardware timer (block 73). Upon receipt of such 
and file extension are randomly chosen and the process information from the installer, the purveyor ascertains the 
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key algorithm utilized in the software copy from the regis- 
tration number provided (block 74), calculates the install 
password using the clock date in the install password 
algorithm (block 75), converts the install password into an 
odd/even purveyor install key number series (block 76), and 5 
transmits the odd/even purveyor install key number series as 
the purveyor install key (block 77). The purveyor install key 
is input by the installer (block 78). The install program may 
also request that the user input a user profile (block 79). In 
order for the application program to continue to run, the 10 
installer must notify the purveyor if a fixed parameter of the 
operating system is to change (block 80). The purveyor may 
alter the internal run key by programming means or by 
requiring re -installation of the application program. The 
installer may also be prompted to input a user profile (block 15 
79), such as a signature. 

Although specific embodiments of the present invention 
have been described in detail above, various modifications 
thereto would be readily apparent to one with ordinary skill 
in the art. All such modifications are intended to be included 20 
within the scope of the present invention as defined by the 
following claims. 

What is claimed is: 

1. A software security system for restricting unauthorized 
duplications and installation of an application program com- 25 
prising: 

a software instruction-set means for restricting the instal- 
lation of said application program to persons authorized 
to install said application program, said software 
instruction -set means for restricting installation being 30 
incorporated into an installation program routine for 
installing said application program onto one or more 
data processing systems; 

a software instruction-set means for restricting utilization 35 
of said installed application program to said one or 
more data processing systems onto which said appli- 
cation program was originally installed, said software 
instruction-set means for restricting data processing 
system utilization being incorporated into said appli- ^ 
cation program; 

wherein said application program has nonsense instruc- 
tion sets dispersed throughout its program routine; 

wherein said installation program routine includes a soft- 
ware instruction set means for removing said nonsense 45 
instruction sets in said application program upon instal- 
lation of said application program on said one or more 
data processing systems; 
and wherein said application program is permitted to be 
executed upon confirmation of an internal run key. 50 

2. The software security system of claim 1 wherein said 
software instruction -set means for restricting installation of 
said application program employs a time -variable authori- 
zation code. 

3. The software security system of claim 1 wherein said 55 
software instruction -set means for restricting utilization of 
said application program to the one or more data processing 
systems on which said programming was installed employs 

an authorization code related to fixed parameters of the 
operating system of said data processing system. 60 

4. A method for protecting against unauthorized duplica- 
tion and installation of a software application program 
recorded within a storage medium for use in a data process- 
ing unit comprising the steps of: 
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storing within said software application program a non- 
sense instruction-set such as to make said software 
application program unexecutable; 

performing a first predetermined operation upon initiation 
of installation of said software application program 
onto said data processing unit to determine an appli- 
cation program installation key; 

storing said application program installation key in a first 
data storage area of said data processing unit; 

performing a second predetermined operation upon ini- 
tiation of installation of said software application pro- 
gram onto said data processing unit to determine an 
internal run key; 

storing said internal run key in a second data storage area 
of said data processing unit; 

obtaining said installation key from the purveyor of said 
software application program; 

inputting said purveyor installation key into said data 
processing unit; 

comparing said purveyor installation key with the instal- 
lation key in said first data storage area; 

installing said application program in a data storage area 
of said data processing unit upon match between said 
purveyor installation key and said installation key 
stored in said first data storage area; 

performing a third pre-determined operation upon initia- 
tion of execution of said installed software application 
program to determine an execution -time run key; 

comparing said execution-time run key within said inter- 
nal run key stored in said second data storage area; 

permitting full execution of said application program 
upon determining correspondence between said 
execution-time run .key and said internal run key stored 
in said second data storage area; 

placing within an installation program for installing said 
application program onto said data processing unit an 
instruction-set for removing, by deleting, nonsense 
instruction sets placed in said application program, 
upon installation of said application program. 

5, A software security system for restricting unauthorized 
duplications and installation of an application program com- 
prising: 

an application program having nonsense instruction sets 

placed in its instruction routine; 
an installation program having a software instruction-set 

for removing, by deleting said nonsense instruction sets 

from said application program; 
a software instruction set for storing information unique 

to the profile of an authorized user in said application 

program; 

an input means for inputting information unique to the 

profile of said authorized user; 
software comparison means for comparing said unique 
stored profile information with said inputted unique 
profile information; 
wherein said application program further has a software 
instruction set for limiting access to said application if said 
stored unique profile information does not match said input- 
ted unique profile information. 

***** 
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